diff --git a/src/docs/asciidoc/web/webmvc-view.adoc b/src/docs/asciidoc/web/webmvc-view.adoc
index 2856ea3b2b..73b61e8f11 100644
--- a/src/docs/asciidoc/web/webmvc-view.adoc
+++ b/src/docs/asciidoc/web/webmvc-view.adoc
@@ -7,8 +7,11 @@ Thymeleaf, Groovy Markup Templates, JSPs, or other technologies, is primarily a
 of a configuration change. This chapter covers view technologies integrated with
 Spring MVC. We assume you are already familiar with <<mvc-viewresolver>>.
 
-
-
+WARNING: The views of a Spring MVC application live within the internal trust boundaries of that
+application.
+Views have access to all the beans of your application context.
+As such, it is not recommended to use Spring MVC's template support in applications where the
+templates are editable by external sources, since this can have security implications.
 
 [[mvc-view-thymeleaf]]
 == Thymeleaf